How to let IAM Identity Center user operate Lightsail container via AWS CLI?
Hi guys, I am newbie here.
I have create a user in IAM Identity Center with AdministratorAccess permission, I can use this user to deploy the lightsail container in aws console, but I can't upload image via cli , it be rejected as below:
Does anyone knows how to solve it? thanks
- Newest
- Most votes
- Most comments
Hello.
If you are an IAM Identity Center user, you cannot use it unless you also set "aws_session_token" in addition to the access key and secret access key.
So, please try setting the "~/.aws/credentials" file as follows.
[yyyyyyyy_AdministratorAccess]
aws_access_key_id=yyyyyyyyyyyy
aws_secret_access_key=yyyyyyyyyyy
aws_session_token=yyyyyyyyyyyyy.....
Or you can use it by running the command to set environment variables as shown below.
export AWS_ACCESS_KEY_ID="yyyyyyyyyyyy"
export AWS_SECRET_ACCESS_KEY="yyyyyyyyyyyy"
export AWS_SESSION_TOKEN="yyyyyyyyyyyyy....."
One way is to use the "aws configure sso" command.
https://docs.aws.amazon.com/cli/latest/userguide/sso-configure-profile-token.html#sso-configure-profile-token-auto-sso
Relevant content
- asked 2 months ago
- asked 3 months ago
- asked a month ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 5 months ago
I appreciate it